Help with SAML integration - New Users are not created

Nicolás_Mella · January 15, 2021, 4:38pm

Hi there !

I am trying to integrate Keycloak Single Sign On with Discourse. I am using SAML client. Sequence is this:

User goes to discourse webpage. (Discourse version: 2.7.0)
User click on LogIn button
User selects with SAML
User is forwarded to the Keycloak instance for authentication.
Keycloak redirect User back to discourse webpage.
User is not created. Error shows: “Sorry, there was an error authorizing your account. Please try again.”

Discourse Logs shows error:

“(saml) Authentication failure! invalid_ticket: OneLogin::RubySaml::ValidationError, Fingerprint mismatch”

(

Any hint or advise ? Thanks for your time.

pfaffman · January 15, 2021, 9:01pm

You can search the saml plugin for “Fingerprint mismatch.” My guess is that you don’t have the right credentials/kays to talk to SAML. Next is something about the scope.

Topic		Replies	Views
Change password issue with SAML Support	3	384	November 12, 2020
Discourse-saml, choosing solution Support	14	1829	January 17, 2020
Discourse, Keycloak, SAML vs OAuth Support	3	1765	September 24, 2020
Keycloak, Discourse and SAML again SSO	1	806	October 19, 2022
Configure OneLogin's SAML for Discourse Integrations sso , how-to	0	7223	August 18, 2017

Help with SAML integration - New Users are not created

Related Topics